# Authentication

Authorization headers should be in the following format: `Authorization: Bearer SECRET_KEY`

Any requests made without authentication will fail with the status code `401: Unauthorized`. Also, all Live API requests must be made over HTTPS. 

Access keys on the API do not expire, unless you generate a new key. You can create a new key under the settings tab on the [Terminal dashboard](https://dashboard.terminal.africa).

#### API Endpoints:

Test Endpoint: `https://sandbox.terminal.africa/v1`

Live Endpoint: `https://api.terminal.africa/v1`